Highflame Identity is now open source: agent identity on open standards. Read the launch
Book a Demo

DPoP

Demonstrating Proof-of-Possession (RFC 9449): binds a token to a proof key so a stolen token is inert without it.

Part of the Agent Control Fabric: Highflame's identity, policy, and enforcement substrate for AI agents.

Book a demo All terms

Keep exploring the glossary.

Guardrails

Inline detection and enforcement on an agent's prompts, tool calls, and responses: blocking unsafe actions in real time.

Read →

Identity provider (IdP)

The system that issues and manages identities. Highflame extends your existing IdP to agents rather than replacing it.

Read →

Inline enforcement

Evaluating and deciding on an action before it executes, out-of-band and fail-closed, rather than detecting it after the fact.

Read →

Just-in-time (JIT) access

Issuing short-lived, task-scoped credentials on demand that expire when the work is done: eliminating standing access there's nothing to leak or over-grant.

Read →

MCP (Model Context Protocol)

An open protocol that connects agents to external tools and data. Powerful for capability. But every connection is a new access path that has to be governed.

Read →

MCP Gateway

A governed checkpoint every tool connection passes through (authenticated, policy-checked, and logged) so credentials stay central and unapproved servers can't connect.

Read →